This image shows the architecture for ComSpec's student information system (SIS) on Oracle Cloud Infrastructure (OCI). It includes a primary region and a disaster recovery region.

The disaster recovery region provides 1 availability domain, 1 fault domain, 1 virtual cloud network (VCN), and 1 private subnet to house the disaster recovery database system. The regions are connected by using remote peering through a dynamic routing gateway (DRG). Data Guard connects the production and disaster recovery database systems in each region.

The primary region provides identity and access management, auditing, monitoring, and object storage for database backups. The VCN provides the following gateways:

• Internet gateway: Provides communications between public subnets and internet hosts. In this case, it connects the on-premises data centers of client schools to OCI.
• Service gateway: VCNs communicate with services such as object storage over the Oracle network fabric without traversing the internet.
• Dynamic routing gateway (DRG): Provides private connectivity between your on-premises networks and VCNs by using Site-to-Site VPN or FastConnect. A DRG can also route traffic between VCNs for remote peering.
• Remote Peering: Allow subnet resources in different regions to communicate using private IP addresses without routing the traffic over the internet or through your on-premises network.

The production VCN includes 1 virtual cloud network (VCN) with 2 fault domains and 5 subnets:

• Load balancer public subnet: Provides an active load balancer in fault domain 1 and a standby load balancer in fault domain 2.
• Application private subnet: Provides virtual machines that host a Uniface Anywhere controller and three Uniface Anywhere application servers, which transfer data to and from an Oracle Database. It also provides web portal, ColdFusion applications, and Java applications, which also transfer data to and from the Oracle Database.
• Management private subnet: Provides a VM that allows ComSpec admins to manage the platform and to run ad hoc reports from on-premises equipment by using a virtual private network (VPN) over an IPsec secure network protocol.
• Database private subnet: Hosts Oracle Database Cloud Service with connections to the disaster recovery database using Data Guard and to regional object storage for backups through the service gateway.
• Backup private subnet: Provides a backup domain controller, a backup controller server, a scheduled tasks server, and a backup controller server.